CVE-2017-11322

Name of the Vulnerable Software and Affected Versions UCOPIA Wireless Appliance versions prior to 5.1.8

Description The issue allows remote attackers to gain root privileges by exploiting a metacharacter in the argument to the chroothole client executable. This is achieved by using a dollar sign ($) metacharacter.

Recommendations For versions prior to 5.1.8, update to version 5.1.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the chroothole client executable until the update is applied.